Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d3b4g vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4772
SQL injection vulnerability in main/main.php in QuestCMS allows remote malicious users to execute arbitrary SQL commands via the obj parameter.
Questwork Questcms
1 EDB exploit
NA
CVE-2008-4774
Cross-site scripting (XSS) vulnerability in main/main.php in QuestCMS allows remote malicious users to inject arbitrary web script or HTML via the cx parameter.
Questwork Questcms
1 EDB exploit
NA
CVE-2008-6216
SQL injection vulnerability in cadena_ofertas_ext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote malicious users to execute arbitrary SQL commands via the OfertaID parameter.
Bookingcentre Booking System For Hotels Group -
1 EDB exploit
NA
CVE-2008-6246
SQL injection vulnerability in category.php in Scripts For Sites (SFS) EZ Webring allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Scripts-for-sites Ez Webring -
1 EDB exploit
NA
CVE-2008-6326
SQL injection vulnerability in login.php in Simple Customer as downloaded on 20081118 allows remote malicious users to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party inf...
Simplecustomer Simple Customer -
1 EDB exploit
NA
CVE-2012-6589
Cross-site scripting (XSS) vulnerability in search.php in MYRE Business Directory allows remote malicious users to inject arbitrary web script or HTML via the look parameter.
Myrephp Myre Business Directory -
1 EDB exploit
NA
CVE-2008-5970
SQL injection vulnerability in profile_social.php in i-Net Solution Orkut Clone allows remote authenticated users to execute arbitrary SQL commands via the id parameter.
I-netsolution Orkut Clone Nil
1 EDB exploit
NA
CVE-2010-5289
Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.dll in IncrediMail 2.0 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a long string in the first argum...
Incredimail Incredimail 2.0
1 EDB exploit
NA
CVE-2008-6215
Cross-site scripting (XSS) vulnerability in cadena_ofertas_ext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote malicious users to inject arbitrary web script or HTML via the OfertaID parameter.
Bookingcentre Booking System For Hotels Group -
1 EDB exploit
NA
CVE-2008-6332
SQL injection vulnerability in login.php in Simple Customer 1.2 allows remote malicious users to execute arbitrary SQL commands via the password parameter.
Simplecustomer Simple Customer 1.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »